Slackware updates now has a security update to curl. This fixes a condition using FTP in PASV mode. Its rather important. The updater or slackware com has the patch. The doc files can be removed, and the dot package file moved to builtin.

Regards
8Geee_________________Linux user #498913 "Some people need to reimagine their thinking."
"Zuckerberg: a large city inhabited by mentally challenged people."

AtomicPup-18 uses a configured Firefox27. There are some changes need in about: config that alters the sizes of all non-zero caches. This is due to concerns about the side-channel attacks by Meltdown/spectre upon the CPU's caches. Keeping the browser = CPU helps, but does not solve the problem. In Atom CPU's the computer is not vunerable, but the browser is. In its supplied configuration, this browser does not "look ahead" or auto-complete, and does not use workers or an indexed database. This is the actual mitigation, but this new 'version' of M/S goes after the browser's cache. Thus, the browser cache must be made equal to the CPU size, else a racing condition exists. The next update of AtomicPup will include this in the browser. I have tested this patching with no harm/no foul so far (about a week).

For now if you wish, you can try these settings on your Atom CPU based AtomicPup-18.

1.) Disconnect from the internet
2.) Open Firefox and type about:config in the address bar
3.) Be Careful, and type cache in the search-bar
4.) A list of items will appear
5.) These items that are numeric AND not zero are changed to 512 for single-core Atoms, or 1024 for dual-core.

This must be a good choice for me. I use artful pup but it's too much for the small machine. I think this will be quicker for the atom n455. I'm excited to download this operating system._________________www.reverbnation.com/severemetastasis, http://www.bitlanders.com/metal-joe

Slackware has just released an openssl update --> 1.0.2p.
This has to be done at slackware using the default link in the browser provided. Download the solibs first (answer "Yes" in yellow box). and wait for the GUI boxes to clear, then download the main 1.0.2p update. When those GUI boxes clear, installation is done.

/usr/docs can be removed, and /root/.packages foor these two files can be moved to builtin, with removal of old file-lists.

The computer needs a shutdown with later restart (usually 5 minutes or more).

Regards
8Geee_________________Linux user #498913 "Some people need to reimagine their thinking."
"Zuckerberg: a large city inhabited by mentally challenged people."

Firefox27...
Javascript has all caches zeroed
Necessary caches reduced to 512Kb (dual-core Atoms should alter this to 1024Kb)

The recent website problems have been fixed. This might be "their" side of the connection.

See the first posting for download and sha1sum.

Regards
8Geee_________________Linux user #498913 "Some people need to reimagine their thinking."
"Zuckerberg: a large city inhabited by mentally challenged people."Last edited by 8Geee on Wed 22 Aug 2018, 20:23; edited 2 times in total

Slackware has released a security update to libX11 (only). AtomicPup-XIX uses the slackware-14.0-i486 version. After download (click YES in yellow box) the dot package file can be moved to builtin, and the DOC files in /usr/docs can be deleted. I waaited a day to see if there were/are any problems... so far so good.

Regards
8Geee_________________Linux user #498913 "Some people need to reimagine their thinking."
"Zuckerberg: a large city inhabited by mentally challenged people."

IMHO its a good fit for these old netbooks, there's still plenty of the 10" versions floating around at ebay <US$100.

In Other News: YouTube is once again playing naughty, and the 'old method' of downloading the replay no longer works. Since the Download as mp4 addon is installed, use that on the error page (formerly known as the video page), saving as 360p to save space. Warning that some movies exceed 500Mb (3x the size of the distro) !

Regards
8Geee_________________Linux user #498913 "Some people need to reimagine their thinking."
"Zuckerberg: a large city inhabited by mentally challenged people."

"This update fixes a timing side-channel flaw on processors which implement SMT/Hyper-Threading architectures, and a side channel attack on DSA signature generation that could allow an attacker to recover the private key."

I have had to bust this update as it borqs both epdf and FreeOffice 6.97. DO NOT UPGRADE !!!

Regards
8Geee_________________Linux user #498913 "Some people need to reimagine their thinking."
"Zuckerberg: a large city inhabited by mentally challenged people."

Recently, Slackware published an update to OpenSSL. Within that update was a very troubling patch for ANY TLS security using the ECDSA method. Although the full patch borqued AtomicPup-XIX, this one patch is the most important update.

SORRY: this particular update is not necessary when running an ATOM CPU BEFORE 2012. This is the intended target of AtomicPup-XIX. The tracing of this security request is not the SSL vunerability, but in reality a CPU security compromise. The CPU security compromise is based upon Speculative Execution and Out-of-Order execution on/in more advanced CPU's (read: 64-bit). Since the Intel Atom processors built before 2012 are essentially 32-bit and do not have any form of Speculation/OoE, the cracking of the SSL information (read: key-exchange) is mitigated at the CPU level. That means the browser, for the most part, is also OK on the client side. But the server-side, as always, runs a risk of not being up to date.

I do note that there are versions of 64-bit ATOMS that are also immune. Generally, these were built in 2010 or 11.

To fix the erroneous patch

Disconnect from the internet and open FF-27.
Be careful and enter ECDSA into address bar.
Allow True (Double-Click) these three...

You cannot post new topics in this forumYou cannot reply to topics in this forumYou cannot edit your posts in this forumYou cannot delete your posts in this forumYou cannot vote in polls in this forumYou cannot attach files in this forumYou can download files in this forum